Fortinet FortiGate Reviews, Competitors and Pricing

TEDDY LLANO

Technical Lead at Yssy

Mar 21, 2022

Download

Has good inspection and web security features and is useful for SD-WAN purposes

Pros and Cons

"The inspection and web security features are most valuable."

"There can be more security in hybrid implementations. When a customer has a hybrid environment where some parts are in the cloud, we need a consistent security solution for such scenarios."

What is our primary use case?

My company is a system integrator in Brazil, and we are also a partner. We mainly use it for SD-WAN purposes. It is being used in the public sector and the commercial sector.

In terms of deployment, some customers deploy it on-premises, and some customers deploy it on the cloud.

What is most valuable?

The inspection and web security features are most valuable.

What needs improvement?

In Brazil, the main problem that we have is related to the protection from various attacks and ransomware in the public sector and the commercial sector. The main focus in Brazil is to deploy a solution to counter-attack ransomware and other attacks.

There can be more security in hybrid implementations. When a customer has a hybrid environment where some parts are in the cloud, we need a consistent security solution for such scenarios.

What other advice do I have?

I would rate it a 10 out of 10.

Disclosure: My company has a business relationship with this vendor other than being a customer: Partner.

Anderson Guedes

Specialist of IT Solutions at InterNexa

Mar 20, 2022

Download

Highly scalable, good support, and simple configuration

Pros and Cons

"The most valuable feature of Fortinet FortiGate is the simple configuration."

"Fortinet FortiGate can improve the integration with Active Directory. Additionally, I would like to have a Cloud Controller, such as they do in the Cisco Meraki solution."

What is our primary use case?

I use Fortinet FortiGate for my customers to have a secure network.

What is most valuable?

The most valuable feature of Fortinet FortiGate is the simple configuration.

What needs improvement?

Fortinet FortiGate can improve the integration with Active Directory. Additionally, I would like to have a Cloud Controller, such as they do in the Cisco Meraki solution.

For how long have I used the solution?

I have been using Fortinet FortiGate for approximately two years.

What do I think about the stability of the solution?

I have found Fortinet FortiGate to be stable.

What do I think about the scalability of the solution?

Fortinet FortiGate is scalable.

How are customer service and support?

The technical support from Fortinet FortiGate is good.

Which solution did I use previously and why did I switch?

I have used Cisco solutions previously.

How was the initial setup?

Fortinet FortiGate is simple to implement. We have five engineers and five analysts that do the implementation and maintenance of the solution.

What's my experience with pricing, setup cost, and licensing?

The price of Fortinet FortiGate could improve, it is expensive.

What other advice do I have?

Overall Fortinet FortiGate is a good solution.

I rate Fortinet FortiGate an eight out of ten.

Which deployment model are you using for this solution?

On-premises

Disclosure: My company has a business relationship with this vendor other than being a customer: Partner

Buyer's Guide

Fortinet FortiGate

January 2025

Free Report: Fortinet FortiGate Reviews and More

Learn what your peers think about Fortinet FortiGate. Get advice and tips from experienced pros sharing their opinions. Updated: January 2025.

DOWNLOAD NOW

831,265 professionals have used our research since 2012.

Simon Coombs

System Administrator at a media company with 11-50 employees

Mar 16, 2020

Download

Provides a high standard of security for our clients

Pros and Cons

"We are a visual effects company, and there have been a number of high profile security issues in our industry. This has brought us to a higher standard of security, which our clients are very keen on these days."

"We had a minor problem where there was a major system upgrade on the hardware platfrom and the Mac client was not available as soon as it might have been. The PC client was available immediately, but we had to wait a month or so, before there was a mac client. I was slightly irritated that it was not ready on time, but it was eventually resolved."

What is our primary use case?

I primarily use this solution for external security of our network.

How has it helped my organization?

We are a visual effects company, and there have been a number of high profile security issues in our industry. This has brought us to a higher standard of security, which our clients are very keen on these days.

What needs improvement?

We had a minor problem where there was a major system upgrade on the hardware platform and the Apple Mac client was not available as soon as it might have been. The PC client was available immediately, but we had to wait a month or so, before there was a Apple Mac client. I was slightly irritated that it was not ready on time, but it was eventually resolved.

For how long have I used the solution?

Almost two years.

What do I think about the scalability of the solution?

Fortigate has more than adequate capability to cope with everything we require for the foreseeable future.

How are customer service and technical support?

The support is very good, and we have had no issues.

Which solution did I use previously and why did I switch?

Previously had a SonicWall. Even allowing for an upgrade discount on the SonicWall, the FortiGate was a more compelling purchase.

How was the initial setup?

It was fairly straightforward.

Disclosure: I am a real user, and this review is based on my own experience and opinions.

reviewer743844

Mgr. IT Infrastructure and Network Operations at a media company with 11-50 employees

Jul 10, 2018

Download

Centralized monitoring, policy management, and virtualized appliances allow us to take control over our public and private infrastructure

Pros and Cons

"Centralized monitoring, policy management, and virtualized appliances allow us to take control over our public and private infrastructure."

"Cisco Meraki products are rising very quickly in the cloud and the connected era. Meraki products offer much better ROI, upgradability, and manageability."

What is our primary use case?

Security
Monitoring and controlling
VPN
Active Directory integration
Servers
All components related to an enterprise environment.

How has it helped my organization?

We replaced Sophos with FortiGate and found it better than the Sophos product. It has better control, insights, and prevention from crypto malware and other threats.

What is most valuable?

The most valuable features are centralized monitoring, policy management, and virtualized appliances so we can have control over public and private Infrastructure.

What needs improvement?

Cisco Meraki products are rising very quickly in the cloud and the connected era. Meraki products are future proof and offer much better ROI, upgradability, and manageability.

IT is continuously evolving, and every few days or months, there is something new. Whoever evolves first will take the lead over the competition. Adopting and evolving is the key to success.

For how long have I used the solution?

Less than one year.

What do I think about the stability of the solution?

These products are solid and stable.

What do I think about the scalability of the solution?

We have not had any issues with scalability.

How are customer service and technical support?

Our experience with support has been fine. No trouble or hassle.

Which solution did I use previously and why did I switch?

Sophos: It was good for small businesses, who are evolving and improving. Though, I found Cisco Meraki to be much better.

How was the initial setup?

Part of the setup was straightforward and other parts were complex. They need to work on feature placements and menus.

What about the implementation team?

We did the implementation through a vendor, who had good experience.

What was our ROI?

Two to three years, depending on usage type, number of users, and organizational size.

Which other solutions did I evaluate?

Yes, we did, Palo Alto and other solutions, but we found FortiGate to be the best solution at that point in time.

Disclosure: I am a real user, and this review is based on my own experience and opinions.

reviewer1197741

Group IT Infrastructure Manager at a manufacturing company with 1,001-5,000 employees

Jan 31, 2022

Download

A scalable and stable solution

Pros and Cons

"Fortinet FortiGate is a stable solution."

"I would like to see improvements with the antivirus and IPS as they are not working properly all the time."

What is our primary use case?

We are a sister company of Fortinet FortiGate. Our organization has more than 3,000 users.

What needs improvement?

I would like to see improvements with the antivirus and IPS as they are not working properly all the time.

For how long have I used the solution?

I have been using Fortinet FortiGate for twelve years.

What do I think about the stability of the solution?

Fortinet FortiGate is a stable solution.

What do I think about the scalability of the solution?

This solution is very scalable.

What other advice do I have?

Prior to choosing Fortinet FortiGate you should make sure you select the right box. Be sure of the capacity and have a capacity plan before installation. I suggest you do a failover and redundant together, compact boxes together.

I would rate this solution an 8 out of 10.

Disclosure: I am a real user, and this review is based on my own experience and opinions.

reviewer1448211

System Administrator at a computer software company with 501-1,000 employees

Nov 12, 2020

Download

Easy to configure and the technical support is good, but the newer versions have issues with stability

Pros and Cons

"The most valuable feature is the ease of configuration."

"One of the problems I was having was with user mapping, and it is an issue for which I have escalated tickets with Fortinet support."

What is our primary use case?

We use this firewall as part of our security solution.

What is most valuable?

The most valuable feature is the ease of configuration.

What needs improvement?

There are a lot of known issues in some newer versions of the FortiGate operating system, so there is room for improvement with that. One of the problems I was having was with user mapping, and it is an issue for which I have escalated tickets with Fortinet support.

Having the newer features work in the older, more stable versions of the product would be great. Some of the new features might really help a lot, but there are problems with stability.

For how long have I used the solution?

I have been working with FortiGate for approximately two years.

What do I think about the stability of the solution?

There are a lot of new features built into newer releases, but there are not very stable.

How are customer service and technical support?

The Fortinet technical support is awesome. They're handling my problem quickly and doing it well.

What's my experience with pricing, setup cost, and licensing?

The price is okay.

Which other solutions did I evaluate?

I have compared solutions from other vendors including Palo Alto.

What other advice do I have?

This is a good product, however, there is always room for improvement.

I would rate this solution a seven out of ten.

Disclosure: My company has a business relationship with this vendor other than being a customer: partner

Dale Dobeck

Consultant

Feb 6, 2018

Download

Saved a bundle by not needing past appliances from an NGFW, however it needs better performance on bandwidth demands for smaller devices

Pros and Cons

"Consolidated our network environment at all locations, but mainly at our datacenter."

"One area for improvement is the performance on bandwidth demands for smaller devices, as well as better web filtering."

What is our primary use case?

Firewall/Web Filter management. We have over 30 sites, and it is imperative that one person (myself) can plan, implement, and deploy these devices to our sites and manage them when finished.

How has it helped my organization?

Consolidated our network environment at all locations, but mainly at our datacenter.

What is most valuable?

The web filtering was the most valuable, because at a school board, we need to make sure the students are not tying up our bandwidth and also to keep the bad guys out.

What needs improvement?

One area for improvement is the performance on bandwidth demands for smaller devices, as well as better web filtering. Each manufacturer has their own way of filtering and each one needs improvement in categories, URL, and/or application filtering.

For how long have I used the solution?

One to three years.

What was our ROI?

We saved a bundle by not needing all the past appliances from an NGFW.

Disclosure: I am a real user, and this review is based on my own experience and opinions.

it_user206346

Security Consultant at Webernetz.net - Network Security Consulting

Jul 14, 2015

Cisco ASA vs. Fortinet FortiGate vs. Palo Alto vs. Juniper SSG

Since IPv6 gets more and more important, I am using it by default on all my test firewalls, which of course support IPv6. However, when comparing the different functions and administration capabilities, they vary significantly.

Here comes my short evaluation of the IPv6 functions on the following four firewalls: Cisco ASA, Fortinet FortiGate, Juniper SSG, and Palo Alto.

Criteria

I was merely interested in the basic IPv6 usage and not in the typical firewall categories:

Interface: IPv6 address and link-local address configurable?
Router Advertisement and DHCPv6: Whether the firewalls support nothing (–), only RA (-), DHCPv6 relay (ο), stateless DHCPv6 (+), or stateful DHCPv6 (++). The existence of stateless DHCPv6 is vital for delivering the DNS server IPv6 addresses to the clients. (The “IPv6 Router Advertisement Options for DNS Configuration”, RFC 6106, is not supported by any of these devices.)
Security Policy: Whether IPv4 and IPv6 addresses can be used in the same policy and whether address groups can have objects from both protocols.
Administration: How easy are the IPv6 functions to manage? Only via the CLI (–), fifty-fifty (ο), GUI but complicated (+) , or fully via the GUI (++).

Results

These are the results. They range from — via ο to ++.

	Cisco ASA	Fortinet FortiGate	Juniper ScreenOS	Palo Alto
Version	9.2(3)	5.2.2	6.3.0r18.0	6.1.3
Interface	++	+	++	++
RA, DHCPv6	-	++	+	0
Security Policy	++	-	-	++
Administration	+	-	+	++

Details

Cisco ASA

The Cisco ASA has no DHCPv6 instance running. That is: there is no way to run an IPv6-only network because clients won’t get the DNS server. The security policy is capable of both protocols. Everything is configurable via the GUI, which is not the best at all.

Fortinet FortiGate

The FortiGate is the only firewall with a stateful DHCPv6 server. Great. However, two distinct security policies must be used and nothing of the IPv6 settings are configurable via the GUI. WHAT???

Juniper SSG (ScreenOS)

ScreenOS is dead. However, most of the IPv6 functions are working quite good, except the protocol dependent security policies. Everything is accessible via the GUI, but sometimes on confusing positions.

Palo Alto

Palo Alto did a good job on the IPv6 interfaces and security policies. The GUI is quite intuitive and the policy accepts both protocols at the same time. Unluckily, there is no DHCPv6 server which makes it impossible to operate an IPv6-only client network behind a Palo Alto (without further servers).

Conclusion

It’s interesting to see the differences between those firewalls. While the Fortinet und Juniper firewalls support the whole SLAAC process incl. DNS servers, they have no single security policy for both protocols and are horrable to configure.

The Palo Alto is quite good to configure but lacks the DHCPv6 server. Same for the Cisco.

In summary, all firewalls position in the middle of my scale. From an IPv6-only view, I cannot say which one is the best. It depends….

Originally published on blog.webernetz.net

Disclosure: I am a real user, and this review is based on my own experience and opinions.